Trifecta Tech Foundation

Canonical releases Ubuntu 25.10 Questing Quokka | Canonical The latest interim release of Ubuntu comes with compatibility enhancements at the silicon level, accessibility upgrades and a robust security posture that sets the stage for the next LTS. October 9,…

Ubuntu 25.10, running our sudo-rs as the default sudo, has just been released!

"Rust-based implementations of sudo and coreutils for improved memory safety"

canonical.com/blog/canonic...

#rust #rustlang

Frequently Asked Questions about sudo-rs - Trifecta Tech Foundation With sudo-rs coming to Ubuntu 25.10, the core team has collected and published the Frequently Asked Questions about sudo-rs. They will be updated if user curiosity calls for it.

Two days until the release of sudo-rs in Ubuntu 25.10 🚀
Here is everything you always wanted to know about sudo-rs:

trifectatech.org/blog/frequen...

#rust #ubuntu #rustlang

Improving state machine code generation - Trifecta Tech Foundation Over the past couple of months, Björn and I have been working on improving state machine code generation in the rust compiler, a rust project goal for 2025H1. In late June, PR 138780 was merged,…

Blog post by Folkert: How can we make Rust programs that use state machines even faster?

Trifecta Tech aims to create safe and robust infrastructure software, that's why we're dedicated to making Rust the go-to for performance-critical components like zlib&zstd.

trifectatech.org/blog/improvi...

The link to the Ubuntu blog post changed. New link: discourse.ubuntu.com/t/sudo-rs-is...

Sudo-rs on Ubuntu

** Major milestone ** our sudo-rs is the default sudo for the upcoming Ubuntu 🚀 🦀

More on the Ubuntu blog:
discourse.ubuntu.com/t/sudo-rs-is...

#rust #rustlang

NTS Pool at the IETF 123 Hackathon

Ruben and David are the champions (how cool is that?) for the NTS Pool session at the @ietf.org 123 Hackathon!

In parallel they will also work on NTPv5 interop testing and Network Time Security for PTP and CSPTP.

wiki.ietf.org/en/meeting/1...

#ietf123

sudo-rs Headed to Ubuntu Every day, system administrators all over the world ask their computers to perform security-sensitive tasks across privilege boundaries, such as a standard user executing a command as root. The softwa...

Our sudo-rs is headed to Ubuntu 25.10!

Write-up about the impact of the project and the collaboration with @tweedegolf.bsky.social and @ferroussystems.bsky.social, by our friends and project initiators at Prossimo:

www.memorysafety.org/blog/sudo-rs...

#rustlang #rust

sudo-rs Headed to Ubuntu Every day, system administrators all over the world ask their computers to perform security-sensitive tasks across privilege boundaries, such as a standard user executing a command as root. The softwa...

The success story of the memory-safe sudo-rs, the Rust implementation of the sudo command: www.memorysafety.org/blog/sudo-rs...

Thanks to Prossimo, Ferrous Systems and Trifecta Tech Foundation 🙏

@ferroussystems.bsky.social
@trifectatech.bsky.social

#rustlang #memorysafety #cybersecurity

Artwork of IETF 123 Madrid 19-25 July 2025

Trifecta Tech Foundation's David and Ruben in action at a PTP plugfest

Image announcement ntpd-rs support for Network Time Protocol version 5

David and Ruben are headed to Madrid for the 123rd @ietf.org meeting!
They'll join the NTP WG and work on NTP version 5, an NTS pool, and better time synchronization in general. Come find them to talk all-things-time!

More on NTPv5 & NTS: trifectatech.org/tags/ntpd-rs/

- Madrid 123 image by IETF

ntpd-rs now supports version 5 of the Network Time Protocol - Trifecta Tech Foundation

Time just got better!
ntpd-rs now optionally supports NTPv5, the next version of the Network Time Protocol.

trifectatech.org/blog/ntpd-rs...

#rustlang @sovereign.tech

Release Version 0.2.7 · trifectatechfoundation/sudo-rs To use the precompiled binaries attached below, consult our manual installation instructions Added Linux kernels older than 5.9 are now supported. Support for Defaults noexec/NOEXEC: on Linux syst...

A new release of sudo-rs is out! Highlights:
- Increased backwards compatibility with older Linux kernels.
- Programs executed can be prevented from running other programs (NOEXEC)
- Other usability improvements suggested and contributed by our users!

#rust #rustlang

github.com/trifectatech...

bzip2 crate switches from C to 100% rust - Trifecta Tech Foundation Today we published bzip2 version 0.6.0, which uses our rust implementation of the bzip2 algorithm, libbz2-rs-sys, by default. The bzip2 crate is now faster and easier to cross-compile.

Today we're switching the bzip2 crate from C to 100% rust:

trifectatech.org/blog/bzip2-c...

Thanks to: Alex Crichton and Radically Open Security, and to NLnet Foundation for funding the work through the e-Commons fund with financial support from @minbzk.bsky.social‬

#rustlang #rust

Ubuntu 25.10 Switches to Rust-based Sudo Ubuntu 25.10 will replace the sudo command with sudo-rs, a new Rust rewrite designed to improve memory safety and security. What does this mean for users?

ICYMI: Ubuntu 25.10 is to ship with a new version of 'sudo' written in Rust. #rustlang #ubuntu

Rust rewrites are kind of a long running joke in the world of Linux but soon you're not going to be able to escape them no matter how hard you try, Ubuntu 25... You Will Never Escape Rust Rewrites On Linux

We prefer to say "we'd love to be in your distro".

Nevertheless, a really good "sudo-rs explained" by @brodierobertson.xyz‬. Thanks!

www.youtube.com/watch?v=Le4i...

SIMD in zlib-rs (part 2): compare256 - Trifecta Tech Foundation In part 1 of the "SIMD in zlib-rs" series, we've seen that, with a bit of nudging, autovectorization can produce optimal code for some problems.

Our data compression projects aim to offer best-in-class performance.
@tweedegolf.bsky.social‬'s Folkert de Vries shows how SIMD helps us to speed up zlib-rs in compare256, a crucial part of the compression algorithm that finds repetitions in the input.

trifectatech.org/blog/simd-in...

#rustlang

Our sudo-rs work in The Register:

Look for us at the Trifecta Tech Foundation 'building blocks', near the Tweede golf booth!

@tweedegolf.bsky.social
@rustnl.bsky.social

Calling all Rust educators at RustWeek! Join us for the Rust Educators Speed Date at the Trifecta Tech Foundation table on Wednesday 14 May, 11.00am.

Teach-rs maintainers Tamme and Marc would love to hear both your battle stories and questions about teaching Rust.

#rustlang #RustWeek #education

Rust Foundation Associate Member Announcement | May 2025 - The Rust Foundation DOVER, DELAWARE, May 6, 2025 –The Rust Foundation, an independent, nonprofit organization dedicated to advancing the performance, safety, and sustainability of the Rust programming language, is…

Trifecta Tech Foundation is now a member of the @rustfoundation.org !

Why? We believe that software must become safer; that this is paramount in critical infrastructure; and that #rustlang is an outstanding choice of technology for this purpose.

rustfoundation.org/media/rust-f...

Memory-safe sudo to become the default in Ubuntu - Trifecta Tech Foundation May 6, 2025 – Ubuntu 25.10 is set to adopt sudo-rs by default. Sudo-rs is a memory-safe reimplementation of the widely-used sudo utility, written in the Rust programming language.

* Announcement * Memory-safe sudo to become the default in Ubuntu!

@canonicalltd.bsky.social is supporting us to get sudo-rs ready for Ubuntu 25.10. 

trifectatech.org/blog/memory-...

use `zlib-rs` for gzip compression in rust code by folkertdev · Pull Request #15417 · rust-lang/cargo What does this PR try to resolve? This PR uses zlib-rs via the flate2 crate. It is used for (de)compressing gzip files (e.g. in cargo package). Using zlib-rs is significantly faster, and produces o...

We're happy to see adoption for zlib-rs skyrocketing. Especially stoked about rust tooling like cargo, gitoxide and rustup 🚀

Special thanks to @josh.social.joshtriplett.org.ap.brid.gy

github.com/rust-lang/ca...
github.com/rust-lang/ru...
github.com/GitoxideLabs...

Release v0.5.0 · trifectatechfoundation/zlib-rs This is technically a breaking change, but unless you rely on rust exporting C symbols, you should not run into any issues when upgrading. highlights the export-symbols feature now controls whethe...

New release: zlib-rs 0.5.0 🎉
We now allow using zlib-rs together with stock zlib or zlib-ng in the same project.

This is a **breaking change** if you relied on Rust exporting C symbols. The export-symbols flag preserves the previous behavior.

github.com/trifectatech...

#rustlang #rust

Release Version 0.2.5 · trifectatechfoundation/sudo-rs To use the precompiled binaries attached below, consult our manual installation instructions Added sudo visudo will protect you from accidentally locking yourself out Support for --prompt and SUDO...

New: sudo-rs supports FreeBSD + (highly anticipated!) "--bell" 🔔

Also in this release: the first contribution (bugfix) by Todd Miller, the maintainer of the original sudo - thank you!

More thanks to our funder NLnet Foundation and our maintainers Marc and Bjorn.

github.com/trifectatech...

Carefully But Purposefully Oxidising Ubuntu Last month I published Engineering Ubuntu For The Next 20 Years, which outlines four key themes for how I intend to evolve Ubuntu in the coming years. In this post, I’ll focus on “Modernisation”.…

sudo-rs might become the default in future Ubuntu releases!

The details from Ubuntu VP of Engineering Jon Seager: buff.ly/axxif1t

Our team, Marc, Bjorn, Ruben and Marlon are core contributors of sudo-rs, which is now part of Trifecta Tech Foundation.

#rustlang #riir

It's underway! The week of #IETF122 Bangkok hosted by Juniper Networks has kicked off with the #IETFHackathon. Select sessions are streamed live and all sessions are available on demand after the meeting. Find links and more information at: www.ietf.org/live/

Migrate to `zlib-rs` (again) by charliermarsh · Pull Request #11894 · astral-sh/uv Summary I believe zlib-rs is now a better choice on ARM and x86, so I'm just going to assume it's a better choice everywhere. It's much easier to build (removes our CMake dependency), a...

zlib-rs is now used in uv!
uv is the extremely fast Python package & project manager with over 200M requests/day.

Not only are we happy about the adoption but also grateful for Astral and @crmarsh.com stepping up and supporting us through a GitHub sponsorship. Thanks!

Huge news in this article by Ubuntu VP of Engineering @jnsgr.uk:
Our sudo-rs and @uutils.bsky.social may become the default in Ubuntu in the future, as part of their strategy to move to memory safe code.

discourse.ubuntu.com/t/carefully-...

Translating bzip2 with c2rust - Trifecta Tech Foundation Over the past couple of months we've been hard at work on libbzip2-rs, a 100% Rust drop-in compatible implementation the bzip2 compression and decompression functionality.

libbz2 is a 100% rust drop-in compatible implementation of the bzip2 compression library.

We've translated it from the C original using c2rust.
Check out Folkert's blog on our experience:

Release Version 1.5.0 · pendulum-project/ntpd-rs This releases fixes two related low severity vulnerabilities in our NTS cookie parsing, please see the related advisory. Added Support for PPS based sources (this support can be disabled with a co...

New release of ntpd-rs, our Network Time Protocol implementation!

Includes support for PPS (pulse per second) based sources. Fixes two low severity vulnerabilities in our NTS cookie parsing, found through YesWeHack's Bug Bounty program, supported by @sovereign.tech.